• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 437
  • Last Modified:

Cisco VPN static-to-dynamic

Hi,
On my PIX v.8 I have already site to site vpns configured, and I have too remote access vpn configured, what I need to configure now is another vpn with a remote site with dynamic ip.
The remote site has Cisco 877 Router, on it, I already configured the crypto stuff and access list, but I don't know how to configure this new vpn on the PIX adding it to the others already configured.
Any help will be appreciated.
0
arefone
Asked:
arefone
1 Solution
 
John HurstBusiness Consultant (Owner)Commented:
Site to site normally requires static IP addressing. There are two approaches:

1. Use DynDNS to provide a static address even though your remote site changes.  

http://dyn.com/dns/

2. If the remote IP address changes infrequently (not more frequently that once a year) then just use the address and change when needed. I use this approach for my home office site to site tunnels.

.... Thinkpads_User
0
 
arefoneAuthor Commented:
I tried already that doc, it did not work, when I try to issue the command "tunnel-group DefaultL2LGroup general-attributes
   authentication-server-group none" on the pix, it tells that no "authentication-server-group none" option available.
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
fgasimzadeCommented:
Just dont use this option. The configuration described there is 100% working
0
 
arefoneAuthor Commented:
Sorry Fgasimzade, can you post me the configs I need to implement on my pix without having all the stuff I don't need so it helps better?
0
 
XvidalxCommented:
yessss.. configs and logs... will help
0
 
arefoneAuthor Commented:
with "tunnel-group DefaultL2LGroup ipsec-attributes" command on PIX it worked.
0

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now